cjoint

Publicité


Publicité

Format du document : application/octet-stream

Prévisualisation

ÿþ[code]
HitmanPro 3.7.13.258
www.hitmanpro.com

Computer name . . . . : KRIMO4ME-PC
Windows . . . . . . . : 6.1.0.7600.X86/2
User name . . . . . . : KrImO4mE-PC\KrImO4mE
UAC . . . . . . . . . : Disabled
License . . . . . . . : Trial (29 days left)

Scan date . . . . . . : 2016-04-13 00:44:49
Scan mode . . . . . . : Normal
Scan duration . . . . : 11m 58s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : Yes

Threats . . . . . . . : 6
Traces . . . . . . . : 139

Objects scanned . . . : 1 197 324
Files scanned . . . . : 56 134
Remnants scanned . . : 406 359 files / 734 831 keys

Miniport ____________________________________________________________________

Primary
DriverObject . . . : 85D36460
DriverName . . . . : \Driver\atapi
DriverPath . . . . : \SystemRoot\system32\DRIVERS\atapi.sys
StartIo . . . . . : 00000000 +0
IRP_MJ_SCSI . . . : 850021F8 +0
Solution
DriverObject . . . : 85D36460
DriverName . . . . : \Driver\atapi
DriverPath . . . . : \SystemRoot\system32\DRIVERS\atapi.sys
StartIo . . . . . : 00000000 +0
IRP_MJ_SCSI . . . : 898B944E \SystemRoot\system32\DRIVERS\ataport.SYS+25678

Malware _____________________________________________________________________

C:\Users\KrImO4mE\AppData\Local\Temp\Install_17965\ins_yta.exe -> Quarantined
Size . . . . . . . : 8 806 904 bytes
Age . . . . . . . : 284.3 days (2015-07-03 16:31:14)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 54596E9FD8ECBCBF92E436FDBAA3C2FF3FC6E3987EB6B2F4FD5E10B93BEDE929
Publisher . . . . : Goobzo Ltd.
Description . . . : Goobzo YouTube Accelerator
Version . . . . . : 3396(build_133)
Copyright . . . . : (c) 2006-2013
RSA Key Size . . . : 2048
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:AdWare.Win32.Accelerator.h
Fuzzy . . . . . . : 99.0

C:\Users\KrImO4mE\AppData\Local\Temp\SAINST\updater.exe -> Quarantined
Size . . . . . . . : 3 467 720 bytes
Age . . . . . . . : 284.3 days (2015-07-03 16:32:18)
Entropy . . . . . : 7.9
SHA-256 . . . . . : DD7A4C2DBB987129F5BA98E4D2261CEB700EAC9FC55A0F5E4B59B49CED655480
Product . . . . . : Update Helper
Publisher . . . . : Goobzo
Description . . . : Update Helper
Version . . . . . : 1.0.1.5
Copyright . . . . : Copyright (C) 2013
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:AdWare.Win32.Accelerator.h
Fuzzy . . . . . . : 101.0

C:\Users\KrImO4mE\AppData\Local\Temp\SAINST\ytauninstall.exe -> Quarantined
Size . . . . . . . : 567 136 bytes
Age . . . . . . . : 284.3 days (2015-07-03 16:32:18)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 2FABF5B4CF09955F35E86DC37B808ACD7376105A124E55ECB3ACE4065F804EB1
Version . . . . . : 3.3.9.6
RSA Key Size . . . : 2048
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:AdWare.Win32.Accelerator.h
Fuzzy . . . . . . : 104.0

C:\Users\KrImO4mE\AppData\Local\Temp\xtmp8419436\tmp\ClearnC.exe -> Quarantined
Size . . . . . . . : 114 688 bytes
Age . . . . . . . : 304.6 days (2015-06-13 11:15:44)
Entropy . . . . . : 5.8
SHA-256 . . . . . : E27CBD81F15A9C36A4ABB4CABAE6F51BD29E38D490518A1F33605FC67F656B9D
> Kaspersky . . . . : not-a-virus:AdWare.Win32.SearchProtect.tf
Fuzzy . . . . . . : 106.0

C:\Users\KrImO4mE\AppData\Local\Temp\xtmp8419436\tmp\CrashReport_v6.2.7601.2516.exe -> Quarantined
Size . . . . . . . : 232 448 bytes
Age . . . . . . . : 313.9 days (2015-06-04 02:09:46)
Entropy . . . . . : 5.9
SHA-256 . . . . . : F0CA13612CC15DC69C84406574828C14392A451BF170727DA6971C0FD7E39A87
Version . . . . . : 6.2.7601.2516
Copyright . . . . : Copyright (C) 2010
> Bitdefender . . . : Gen:Application.Elex.1
Fuzzy . . . . . . : 101.0

C:\Users\KrImO4mE\AppData\Local\Temp\ytaiesmt_smtyc_setup.exe -> Quarantined
Size . . . . . . . : 1 286 329 bytes
Age . . . . . . . : 284.3 days (2015-07-03 16:29:03)
Entropy . . . . . : 8.0
SHA-256 . . . . . : D2AA8B1B47842A3C6200FAA472A4DF2EE1B577AC97FD4430804F01FC71C2B4E0
Version . . . . . : 2.6.8506.580
> Kaspersky . . . . : not-a-virus:Downloader.NSIS.Agent.ri
Fuzzy . . . . . . : 111.0


Potential Unwanted Programs _________________________________________________

HKLM\SOFTWARE\Classes\TypeLib\{DA624F8F-98BF-4B03-AD11-A12D07119E81}\ (Baidu) -> Deleted
HKLM\SYSTEM\ControlSet001\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}\ (ShopperPro) -> Deleted
HKLM\SYSTEM\ControlSet001\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}\ (ShopperPro) -> Deleted
HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622\ (Linkey) -> Deleted
HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}\ (ShopperPro) -> PendingDelete
HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}\ (ShopperPro) -> PendingDelete
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622\ (Linkey) -> PendingDelete

Cookies _____________________________________________________________________

C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:262855726.log.optimizely.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:2946781464.log.optimizely.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:3456010173.log.optimizely.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:3531950243.log.optimizely.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:594670329.log.optimizely.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:abmr.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adadvisor.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrn.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adgrx.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adingo.jp
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.2xbpub.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.linkedin.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.yahoo.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.ouedkniss.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsymptotic.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:adzerk.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:bskyb.demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:cbsi.demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:cdn.turn.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:contextweb.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ctnsnet.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:dotomi.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpclk.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:dynamicyield.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:effectivemeasure.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:engine.adzerk.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ezakus.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:fr.sitestat.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:go.flx1.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:gssprt.jp
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:igodigital.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:kau.li
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:krxd.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:lijit.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:liverail.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:match.rundsp.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ml314.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:mmstat.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:mswmwpapolloprod.122.2o7.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:nexac.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:openx.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:outbrain.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:owneriq.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ox-d.diply.servedbyopenx.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:pagefair.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:po.st
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:pool.admedo.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:premiumtv.122.2o7.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:pubmatic.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:rhythmxchange.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:rs.gwallet.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:samsung.demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:samsungelectronicsamericainc.demdex.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:simpli.fi
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:skimresources.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:tidaltv.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:trc.taboola.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:univide.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:vindicosuite.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:visualdna.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:warnerbros.112.2o7.net
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:wtp101.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.etracker.de
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com
C:\Users\KrImO4mE\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@246059135.log.optimizely[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@ad.mlnadvertising[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@adnxs[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@agkn[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@bluekai[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@demdex[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@doubleclick[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@effectivemeasure[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@mathtag[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@mookie1[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@msft.demdex[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@nexac[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@openx[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@pixel.rubiconproject[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@pubmatic[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@revsci[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@rfihub[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@rlcdn[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@rubiconproject[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@scorecardresearch[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@statcounter[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@statcounter[3].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@tap.rubiconproject[1].txt
C:\Users\KrImO4mE\AppData\Roaming\Microsoft\Windows\Cookies\krimo4me@turn[2].txt
C:\Users\KrImO4mE\AppData\Roaming\Mozilla\Firefox\Profiles\uyxr3pox.default\cookies.sqlite:ads.yahoo.com
C:\Users\KrImO4mE\AppData\Roaming\Mozilla\Firefox\Profiles\uyxr3pox.default\cookies.sqlite:adtech.de
C:\Users\KrImO4mE\AppData\Roaming\Mozilla\Firefox\Profiles\uyxr3pox.default\cookies.sqlite:doubleclick.net
C:\Users\KrImO4mE\AppData\Roaming\Mozilla\Firefox\Profiles\uyxr3pox.default\cookies.sqlite:effectivemeasure.net
C:\Users\KrImO4mE\AppData\Roaming\Mozilla\Firefox\Profiles\uyxr3pox.default\cookies.sqlite:scorecardresearch.com


[/code]

Publicité


Signaler le contenu de ce document

Publicité